package cn.tedu.boot02.controller;

import cn.tedu.boot02.DBUtil.DBUtil;
import cn.tedu.boot02.entity.User;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;

@RestController
public class UserController {

    @RequestMapping("/reg")
    public String reg(User user) {
        try (
                Connection conn = DBUtil.getConnection();
        ) {
            String sql = "SELECT id FROM user WHERE username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                return "用户名已存在";
            }
            String insertSQL = "INSERT INTO user VALUES(null,?,?,?)";
            PreparedStatement insertPS = conn.prepareStatement(insertSQL);
            insertPS.setString(1, user.getUsername());
            insertPS.setString(2, user.getPassword());
            insertPS.setString(3, user.getNickname());
            insertPS.executeUpdate();
        } catch (SQLException throwables) {
            throwables.printStackTrace();
        }
        return "注册成功";
    }

    @RequestMapping("/login")
    public String login(User user) {
        System.out.println("user = " + user);
        try (
                Connection conn = DBUtil.getConnection();
                ) {
            String sql = "SELECT password FROM user WHERE username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                if (rs.getString(1).equals(user.getPassword())) {
                    return "登陆成功";
                }
                return "密码错误";
            }
        } catch (SQLException throwables) {
            throwables.printStackTrace();
        }
        return "用户名不存在";
    }
}
